The EU’s General Data Protection Regulation (GDPR) is considered “the gold standard” for data protection laws worldwide. Yet, it is a truism to state that it neglects gender. The Regulation itself adopts a gender-neutral approach: gender (or “sex”) is notably missing from the specific provisions about the types of information revealing special category data in Article 9 as well as from the GDPR in general. This appears a significant omission in light of Article 21(1) of the EU Charter of Fundamental Rights (EUCFR), which prohibits dis­crimination, among others on grounds of “sex”.

Surveillance of women and Femtech